Hi, I’m trying to make a mobile SOLID app in Flutter. (cross-platform Android, iOS)
Logging in with solid-node-client through a custom api is easy enough.
The problem is that the app is not supposed to have access to all my data.
With the current implementations, I’m restricted to either give full access by logging in or making the data public.
Because mobile apps don’t send an http-origin header.
Does anyone have an idea how I could give restricted access to a mobile app.
I found the thread about OCAP , but that still seems to be under discussion?
If I create a webID for the app, it would need to authenticate in it’s code, so that’s a security risk in itself.
Thanks in advance